🇮🇳INCERT-In Directions 2022

India CERT-In Directions.

India's CERT-In Directions mandate 6-hour incident reporting, 180-day log retention, and synchronization of ICT clocks for all organizations operating in India - among the strictest incident reporting timelines globally.

Maximum penalty

Criminal penalties under IT Act

Source: CERT-In Directions 2022

Key requirements

6-hour incident reporting to CERT-In

180-day ICT log retention

NTP clock synchronization for all systems

Maintain PoC for CERT-In communication

+1 more requirements in the complete guide.

Get the full CERT-In compliance guide →

Enforcement examples

Multiple VPN providers

Several VPN providers exited India market rather than comply with KYC requirements

Service exit

2022

How Tessera automates CERT-In compliance

6-hour incident reporting automation

Log retention compliance monitoring

NTP synchronization verification

CERT-In communication tracking

CERT-In compliance checklist

Essential steps to achieve and maintain CERT-In compliance.

Implement 6-hour incident reporting to CERT-In

Ensure 180-day log retention

Synchronize ICT clocks via NTP

+2 more steps in the full checklist.

Get your complete CERT-In compliance checklist - free →

Industries affected

Technology & SaaSFinancial Services

Calculate your CERT-In exposure.

See exactly how CERT-In penalties apply to your revenue and industry profile.

Calculate My Exposure Request Demo